John A. Silva
Education:
MS
Computer Science
Long Island University
1992 : 1994
BA
Forensic Psychology
The City College of New York
1976 : 1978
60% of Bachelor's degree
Forensic Psychology
City University of New York-John Jay College of Criminal Justice
1974 : 1976
Experience:
Information Systems Security Officer/ Ld. CyberSecurity Admin. ./ Field Systems Engineer, 2009-Present
Performs duties of Computing Security & Information Protection Specialist. Serves primarily as ISSM for classified computer operations.
⦁ Defines global information risk solutions and security, create, support and maintain information security management systems for the National Defense Shield.
⦁ Responsible for oversight of audits, system access controls, coordination and maintenance of operating authorizations
⦁ Investigates and resolves computing security, events incidents and violations
⦁ Ensures compliance with security program operating procedures and governmental standards
⦁ Storing and disposing assigned classified materiale & equipment
⦁ Rebuilds update & upgrades tactical & strategic systems
⦁ Security education of employees includes participation in AFB/ NATO/ DoD : MDA training
⦁ Prepares and conducts security program reviews, inspections and self-inspections
⦁ Manage consultant teams, security systems engineering and security administration
⦁ Lead Security Architect for Compliance projects and major IT Governance Risk Management
⦁ Organization of programs for DISTCAP/DIACAP/DIARMF, NISPOM, NIST, ISO 9000 and ISO 27001/02. To include transition from one standard to another
⦁ Participated in private workshops for C-level management.
2011 : Present
Boeing Aerospace Services Int'l an Agent of The Boeing Co.
Computing Security & Info Protection Spec - Ld, Security/ CyberSecurity Admin, Field System Engr -
The IAO/ISSO is responsible for implementing and maintaining security for the IS on behalf of the Information Systems Security Manager (ISSM) and/or Information Assurance Manager (IAM) and GM systems a classified C3I/BM system. Performs duties of Computing Security Specialist. Serves primarily as ISSM for classified computer operations.
• Responsible for oversight of audits, system access controls, coordination and maintenance of operating authorizations
• Investigates and resolves computing security incidents and violations
• Ensures compliance with security program operating procedures
• Storing and disposing assigned classified material
• Security education of employees includes participation in AF/ MDA training
• Prepares and conducts security program reviews and self-inspections
UTC-Norden Systems - Programmer/Analyst
Programmer analysts combine the jobs of both a systems analyst and a computer programmer. Analyze user information system needs for sensory systems. Maintains computer systems and programming guidelines by writing and updating policies and procedures. Develops and maintains applications and databases by evaluating client needs; analyzing requirements; developing software for sensory systems.
2009 :
The Boeing Company
Information (info) Systems Security Officer(ISSO)/ Lead, Systems Security - CyberSecurity Admin
•Develop DIACAP Implementation Plan (DIP) that addresses all applicable IA Controls. •Prepare Tenant Security Plan (TSP) •Develop allocations of IA Control/IACIP responsibilities •Eevaluate emerging technologies to securely meet organization’s requirements •Develop Security Concept of Operations : describes basic security philosophy & ‘game plan’. •Develop a Security Design that describes details of how security will be addressed in system & how the functions, & IA Controls identified in Security Concept of Operations are allocated and integrated into system.
•Ensure all final architecture designs address Army/ DoD IA guidance and regulations, provides defense-in-depth, and can provide required level of protection throughout system’s lifecycle. •Information Security Plan (ISP), system diagram, Hardware /Software / Firmware Inventory, Baseline Configurations, Interface & Ports, Protocols, & Services, Configuration Management Plan, etc. •Prepare Security Action Plans & Schedules.
2008 : 2009
STG Inc.
Info Assurance Sec Sys Engineer (IASSE), Lead Agent for the ACA, NETCOM project
Perform DoD Information Technology Security Certification and Accreditation (C&A) Process (DITSCAP) for the upgrade of the Agile Common Environment (ACE), USN Commander 3rd Fleet (C3F) Pacific Communication Systems (PACOM) for SPAWAR San, Diego CA & Hawaii. Rewrote The SSAA for Phase II and Appendices F (SRTM), P (Findings), Q (Residual Risk Assessment) and resulting POAM as it relates to the test cases ran for the Certificate Test and Evaluation (CT&E), , per DODI 8500.01-E, 8500.2, NISPOM 2006 and DCID 1/21 and OMB A-130.
Perform DoD Information Technology Security Certification and Accreditation Process (DITSCAP) to DoD Information Assurance Certification and Accreditation Process (DIACAP, supersedes DITSCAP) Transition for the Joint Technical Data Integration (JTDI) on behalf of NAVAIR, US Army & Air Force , as such writes , per DODI 8500.01-E, 8500.2, NISPOM 2006 and DCID 1/21 and OMB A-130, IA Acquisition Policy AR 70-1.
2007 : 2008
Intergraph (AllStates Tech Srvcs/CrypTek)
Info Assurance Sec Sys Engineering Consultant on the Joint Technical Data Integration project
(1998-1999) Systems Admin/Net Admin Camp Doha, Kuwait
(2003-2007) Installation, configuration, performance, interoperability assessment, vulnerability testing, system optimization, inter-connectivity, operational testing for DoD C4ISR systems, networks & subsystems in Kuwait/Iraq and Afghanistan, theater of war. Maintain, repair, test, integrate, secure, & manage various DoD classified/ non-classified networks (SIPR/NIPR). System integration functions to include new overhauls, upgrade, and repairs. Programmed, diagnosed & supported various types of asymmetric/ symmetric cryptosystems i.e : common fill devices (CFD) to include KYK-13, KO1-18, AN/CYZ-10 Electronic fill DS-101/102 devices. Coordinated over the air transfer (OTAT) over the air re-keying (OTAR) Cryptosystem devices. Experience with Windows, Exchange 2003, Cisco Call Manager and 7900 series IP phones, Cisco PIX and SideWinder Firewalls, Cisco routers (2600, 3600, 6000, 7000, 7500) and switches (1800, 2900, 3000, 5500, and 6500), and KG 75/175, KIV- 7A, V-19/19A Cryptographic devices.
2003 : 2007
Excelis - ITT Industries, Systems Div
Systems Admin/Sec Officer/Site Lead Total Army Com-SWestAsia CentralAsia&Africa Project
Company: Boeing Aerospace Services Int'l an Agent of The Boeing Co.
Years of Experience: 25
Spoken Language: English, Spanish, Portuguese, Creole etc.
Seeking a position within the Department of Defense (DoD), where proficiency and expertise can be fully maximized in the support of National Security.
A self motivated technician combining skills spanning over 30 years in diverse areas of information security, telecommunication, network administration, network design, analysis, network development, integration, and quality control.
I have a rich, technical background that includes a vast amount of first hand experience with various Microsoft Operating System platforms, Office Suites, Cisco Internet Technology, communication encryption, Information Systems security policies, protocols and implementation.
Superior management skills, capable of leading professionals, maximizing individual productivity and creating cohesive team environments. Highly motivated and intuitive, effective at detailed troubleshooting, able to manage both time and resources to maximize productivity.
Specialties:
DCID, DITSCAP, DIACAP/RMF (NIST 800), COMSEC, C&A, Windows, UNiX, Linux, Cisco, IDS (SNORT)
Hardware: Dell, HP, HP MSL 6000 Tape Library, HP StorageWorks 1000, IBM BladeCenter and servers, Cisco Routers and Switches, Cisco ASA Firewalls, Barracuda Firewalls and Load Balancers, ADTRAN, APC
Networking: OSI model, TCP/IP, VLAN, VPN, TACACS/RADIUS, RDP, Citrix, Ethernet, Metro Ethernet, ATM (SONET), Frame Relay, FDDI, ISDN, PRI, T-1, DSL, PPTP, Cisco IOS, SMTP, SMNP, FTP, TFTP, WINS, DNS, DHCP